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Abstract 

This paper deals with three technical ingredients of geometry for quantum infor- 
mation. Firstly, we give an algorithm to obtain diagonal basis matrices for submod- 
ules of the Z rf -module Z% and we describe the suitable computational basis. This 
algorithm is set along with the mathematical properties and tools that are needed 
for symplectic diagonalisation. Secondly, with only symplectic computational bases 
allowed, we get an explicit description of the Lagrangian submodules of Z 2 ,™. Thirdly, 
we introduce the notion of a fringe of a Gram matrix and provide an explicit algo- 
rithm using it in order to obtain a diagonal basis matrix with respect to a symplectic 
computational basis whenever possible. If it is possible, we call the corresponding 
submodule nearly symplectic. We also give an algebraic property in order to single 
out symplectic submodules from nearly symplectic ones. 

PACS numbers: 03.65.Fd, 02.10.Yn, 03.67.-a 
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Introduction 

In recent years, quantum information has grown with increasing interest and speed. 
The widest known stimulation for that is the hope of a much more efficient treatment 
of information with nanocircuits on the one hand and quantum algorithms on the 
other hand. All this is thought to be achievable, both theoretically and practically, 
by exploiting the main features of quantum physics, namely state superposition and 
entanglement. Let us be more specific as to quantum algorithms. There have been 
but a few of them available till now, but as shown for instance by the Bennett and 
Brassard's algorithm BB84 [lj and its generalisations for secure communication or 
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on the contrary the Shor's algorithm [2J the realisation of which would break the 
widespread RSA code by factorising integers in polynomial time, they often rely on 
the discrete Fourier transform (DFT). This core transformation is only a particular 
case of another major topic in quantum theory, namely mutually unbiased bases 
(MUBs). The characteristic of such a set of bases is that a state picked out of one of 
them has equal amplitude over the states of any other one. In the matrix representing 
the discrete Fourier transform, every entry has the same modulus. Thus the basis 
one gets by means of the DFT is unbiased with the computational basis. 

Besides Fourier transform, the notion of MUBs is widespread both in classical 
and quantum information theory. Schwinger unveiled them as soon as 1960 in a pa- 
per about unitary operators but he did not name them [3]. They appear in quantum 
tomography [4J and in quantum games such as the Mean King problem |5J [6J |7J . As 
to classical information theory, one finds them in the study of Kerdock codes [8] 
and spherical codes [9] or in the developpement of network communication proto- 
cols [TO] [EE]. 

Since the beginning of their study in the 80's [12] [3J, we know that a set of MUBs 
in a (i-dimensional Hilbert space contains at most d + 1 of them and that this upper- 
bound can be achieved if d is power of a prime. But whenever d is a composite integer 
and despite an extensive range of mathematics involved, no conclusive information is 
available about the achievement of the upper-bound. As a nonexhaustive list of the 
mathematical tools that have been used, let us cite Galois fields and rings in relation 
with Gaussian sums [I] [13] [II], combinatorics, latin squares [5J, unitary operator 
bases [3] [15], discrete phase space [H]fl7j and Wigner functions [7J[18J[19J, Fourier 
transform [20] [21], finite ring geometry [22j[23j[24] and also SU(n) Lie groups and 
their corresponding Lie algebras |25J|26J[27J with connection to positive operator- 
valued measures (POVMs) [2"8] . 

Several definitions of the Pauli matrix group have been given throughout these 
works. But any of them will be satisfactory for our purpose. Starting from a paper 
by Bandyopadhay et al. [15] and from a study of the Mermin square [29], the strain 
of finite geometry has addressed the issue of finitely generated modules over Z<j. It 
appears as a useful, arithmetical translation of the behaviour of the Pauli operators. 
The Pauli group divided by its center group is isomorphic to a Z^-module and by 
the same token, a tensor product of Pauli groups gives rise to the direct sum of the 
corresponding Z^-modules. Despite this isomorphism is related to a quotient group, 
commutation relations among the Pauli operators themselves and their ability to 
yield MUBs can be translated as geometrical features in the Z^-module we have 
just mentioned. In particular, the symplectic inner product, Lagrangian submodules 
and projective nets appeared to be the objects of interest. About the connection 
between MUBs and Lagrangian submodules, the Heisenberg group and nice error 
bases, see [30] and [31]. The first of those two papers takes place in the frame of Galois 
fields. The use of projective lines is illustrated in [32] [33] and other references therein, 
and their study in relation with their underlying Z^-module is started in [33] |35j • 
Moreover, the action of the Clifford group over a given Pauli group has its own 
geometrical counterpart in the Z^-module and can be studied as such. 

In this paper, we give a set of tools in order to delve into the structure of the 
submodules one meets in quantum theory. Thus in Section [1] we deal with basic 



2 



manipulations of matrices over Z^ and simple diagonalisation. Note that the reduc- 
tion in question is that of matrices whose column vectors form a basis of a given 
submodule, not of matrices representing linear maps. The properties and tools we 
introduce in that section are then used in the frame of symplectic reduction. In Sec- 
tion [2J we build an algorithm in order to reduce basis matrices to a particular form 
using only symplectic changes of basis. This algorithm enables us to set a description 
of the Lagrangian submodules of Z^ n in Section Finally, the issue of symplectic 
diagonalisation is completed for its own sake in Section HI 

This paper is primarily intended to physicists and computer scientists coming to 
quantum information with various backgrounds. The mathematical tools involved 
are all elementary. However, to make the paper self-contained, we recall every feature 
of interest for our particular purpose in two appendices. 



1 Simple reduction 

Let d be any integer > 2. For any specific notations, the reader is referred to the 
appendices. As is the case for vector space theory over a field, vectors in finitely 
generated modules and linear maps between such modules can be represented by 
matrices. The canonical computational basis for vectors will be denoted e. A k x I 
matrix m is upper-triangular (resp. lower-triangular) if for all i G {1, . . . , k}, j G 
{1, . . . , I}, i > j (resp. i < j), we have m^- = 0. The matrix m is diagonal if for 
alH G {1, . . . , k}, j G {1, . . . , I}, i ^ j, we have m^- = 0. The m^s of any matrix 
will be called its diagonal coefficients. We extend to matrices the factor projections 
Tip defined in the Chinese remainder theorem (see Appendix IA.2j) : If m is a k x I 



matrix over Z/o?Z and p is a prime factor of d, then 7r p (m) is the k x I matrix over 
Z/p s Z, s = v p (d), whose (i, j) coefficient is iz p {rriij). Also p-valuation is extended to 
matrices: 

v p (m) = mm(v p (mij);i G {l,...,k},j G {1,...,/}). (1) 

Throughout the paper, we will adopt the conventions that a * in a matrix denotes an 
arbitrary or unknown coefficient or submatrix, and a blank denotes a null coefficient 
or submatrix. The k x k indentity matrix will be written 1^ and the k x I null matrix 
0k t i if necessary. 

In this section and the next one, we address trigonalisation and diagonalisation of 
matrices whose columns are basis vectors of a submodule of Z^. A left-multiplication 
by an invertible matrix is to be interpreted either as an active transformation, that is 
to say an automorphism of ZJJ, or as a passive transformation, that is to say a change 
of computational (free) basis. A right-multiplication by an invertible matrix stands 
for a change of basis of the submodule under consideration. The structure of the 
given submodule will be much easier to study after reduction. The reader interested 
in a more abstract treatment of simple reduction and in particular diagonalisation of 
matrices over more general rings may have a look to [36J [37J [38] . By the way, we shall 
also have an insight into generalisation over Z^ of the "Incomplete basis theorem". 
The set of invertible matrices over Z is denoted GL(n, Z) and the set of invertible 
matrices over Z^ is denoted GL(n, Z^). Note that left-multiplication by an invertible 



3 



matrix does not modify the order of a column vector and hence does not modify the 
gcd of its coefficients. The same is true for right-multiplication and row-vectors. 

The only preliminary result we shall admit is that a square matrix with coefficients 
in a commutative ring is invertible iff its determinant is an invertible element of that 
ring (see [US])- In fact, the proof is a mere copy of the field case. 

Before we go on, a general remark is in order about the algorithms presented in 
this paper. Except the algorithm @ w for symplectic diagonalisation, they are "blind" 
algorithms, that is to say we do not suppose we know where invertible coefficients 
are located in the matrices, what would be mandatory to use the classical Gaussian 
reduction for instance. 

Lemma 1 Let a G V\ be an n- dimensional vector. Then 

3LeGL(n,Z d ),3keZ d ,La = ke 1 . (2) 

The column vectors C 1: . . . , C n of L~ l form a free basis of such that kC\ = a. 

Proof. Our calculations to prove this lemma will be in Z. The results will only 
have to be sent onto residue classes at the end. Let a G Z n , <5„_i = a n _ x A a n , 
a 'n-i = a n-i/8, o! n = a n /5. There exist ki,l\ G Z such that k\a n _i + l x a n = <5 n _i so 
that we have the active transformation on a: 

In-2 
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(3) 



Jn-l) 



L^- 1 ) G GL(n,Z) a 

Repeating this trick on a^" 1 ' with components n — 1 and n — 2 and so on, we bring 
the vector a onto a multiple of e\. Of course, the order of k in Z^ is the same as the 



order of a in HJ\. In details: 
Vz G {1, . . . ,n - 1}, < 
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(4) 



Each has determinant 1, so that the complete transformation given by the prod- 
uct L = YYi=i also has and therefore is an automorphism. So we have shown 
what we were seeking for: 



3L G GL(n, Z), 3k G Z, La = ke 1 . 



(5) 
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Lemma 2 Let ai,a 2 G of order V\,Vi respectively. There exists a linear com- 
bination a of a\,a 2 of order ^ V ^. Moreover, if d is odd, we can build a such 
that 

(a, ai) = (a, a 2 ) = (ai, a 2 ) . (6) 
If d is even, then in general we can have only 

(a, ai) or (a, a 2 ) = (ai, a 2 ) . (7) 

Proof. If ai or a 2 is equal to 0, the lemma is obvious. We now suppose that they 
are not and that d is odd. Let A = (ai\a 2 ) be the n x 2 matrix whose columns are 
ai, a 2 and with the help of lemma [U left-multiply A by an invertible matrix L such 
that Lai has all but its first coefficient equal to 0. The matrix L is to be interpreted 
as a change of basis. If k%, . . . , k n are the coefficients of the second column of LA, let 
8 = k A k\. According to lemma [131 of Appendix IA.2| there exist u, v G U(Z d ) such 
that 

Then we put 



5 = uk + vk 1 . (8) 



or 



{a[\a) = LA[ and (a\a' 2 ) = LA f ™ ). (9) 

(a[\a) = LA^ V " J and {a\a' 2 ) = LA ^ ~ V Q V (10) 

In any case, a answers the lemma since, with lemma [121 and equations f)117p . (1128aj) 
and f)14ip of the appendices, the order of a is 

d d 

u(a) 



8 A (Ar =2 h) Ad (k Ad) A (A™ =1 fc< A d) 

kh) V ( At^rf) = " (ai) V " (a2) - (U) 

And for % = 1,2, 

(a,Oi) = (a, a-) = (ai,a 2 ) . (12) 

To complete the proof, let us deal with the case where d = 2 s . With % = 1 or 2 
such that v{ai) = min(z/(ai), z/(a 2 )), we simply put a — ai. ■ 

Note that for any linear combination b = bia\ + b 2 a 2 of di and a 2 , 

u(a)b = bi(v(a)a\) + & 2 (z^(a)a 2 ) = 0. (13) 

Thus for all b G (ai,a 2 ), z/(6) divides u(a). 

Given two minimal bases / = (fi, ■ ■ ■ , f r ) and g = (gi, . . . , g r ) of a submodule 
M, it is in general not possible to find an automorphism of M that brings fi onto 
gi for all i, even if z/(/j) = v(gi) for all z. Indeed in Zq, we cannot find a 6 Zg and 
6 G U(Z 6 ) so that 

';;)(; ^ 
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We can take b to be 1 or 5. But a should be such that 1 + 3a = 2, what is impossible. 
As to diagonalisation, left-multiplication is still not sufficient, especially because the 
order of respective column vectors from one basis to the other is not preserved: 

;;)(ii)"(iS)- (15) 

We shall make use of lemma [2] to perform diagonalisation with left- and right- 
multiplications. For instance, the latter inequation is solved trivially: 



i 0W1 i \ i -i W i o 

1 M 3 M l V 3 



(16) 



Suppose that we are given a minimal basis b = (pi, . . . , b r ) of a submodule M 
of and B is the matrix of size n x r whose i-th column is b{. The matrix B 
is called a basis matrix for M. With the help of lemma [TJ we could easily put B 
in an upper-triangular form by means of left-multiplications. But we are going to 
transform it into a new, diagonal matrix whose column vectors still generate M. 
Because of lemma |2] and associativity of 1cm, we may suppose that 

r 

"(h) = \/u(b i ), (17a) 

i=i 

Vm G M, v(m)\v(bx). (17b) 

An algorithm which set any matrix that way will be called s$ ' . It consists of an 
appropriate right-multiplication by an invertible matrix. We left-multiply B by a 
matrix L\ with determinant 1 so that L\b\ has all but its first coefficient equal to 
0. Let B = L\B. If one of the coefficients of B but in the first column, say bij, 

j > 2, were not a multiple of the upper- left coefficient bn, then v \ bij\ would not be 

a divisor of v f&nl = v (^i) an d according to relation f)140p of Appendix IB1 and to 
lemma [2] again, there would exist a linear combination of b\ and bj of order greater 
than v(bi), what is impossible by assumption. Since we are only interested in a basis 
of M we can put all but the first coefficient of the first row to and obtain a matrix 
B\. This is equivalent to a right-multiplication by an appropriate invertible matrix. 
Carrying on this process, we obtain a diagonal matrix B r whose column vectors still 
form a minimal basis of M. Let us describe the algorithm in details. 

Algorihtm The starting point is the empty matrix D with no lines and no 
columns, and as an argument a k x I matrix B. Let B = B. Then for i from to 
jj, = min(fc — 1, / — 1), we go on the following steps: 

1. = ( g R'^j R' &> (I — i) x (I — i) invertible matrix such that 

= Bite. 

2. Li + i = ( L'^J ^ an — x ^ ~~ determinant- 1 matrix given by 

lemma [1] such that 5' = L'srf{Bi) has all its first column coefficients but the 
first one equal to 0. 
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3. Ri+i = ( g ^„ ^ with R" a (I — i) X (I — i) invertible matrix such that B'R" 



has all its first line coefficients but the first one equal to 0. 
4. A+i 



A 
b' u 

5. B i+ i is given from B' by deleting the first row and the first column of this 
latter one. 

The results of the algorithm are the change of basis matrices L{B) = Yli=i L^ + 2-i, 
R{B) = Ui=i Rl 1] R? ] and the k x I diagonal matrix %(B) defined to be 

( ^ \ or ( D, +1 fc ,,_ fc ) (18) 

whether k > I or k < I respectively. For all i,j G {l,...,r}, i < j, we have 

As to the minimal basis b, the second case for @o(B) is impossible and thus r < n. 
The minimality of b also implies that none of the diagonal coefficients of D^+i = D r is 
0. Hence, the column vectors of @o(B) still form a minimal basis of M. Additionally, 
note that if we replace every diagonal entry of @o(B) by 1, the column vectors of the 
matrix we obtain form a free basis b of a free, rank-r submodule containing M. 

The remaining features stated in theorem [3] below are immediate consequences 
of the classification of finite, commutative groups. However, we are to prove them 
as an illustration of our topic which is reduction of matrices with coefficients in Z^. 

If we start with a nonminimal basis of M, say b' with r + r' vectors, r' > 1, the 
algorithm ^ yields a matrix of the form 

%{B') = ( D n , r+ r>-k ) , (19) 

where D is a diagonal matrix with k columns, all of them nonzero. Since M is of rank 
r, we have k > r. Suppose k > r and let D be the (1, . . . , n; 1, . . . , r + 1) submatrix 
of D. There exists an r x (r + 1) matrix E whose j-th column, j G {l,...,r + l}, 
contains the components of the j-th column vector of D with respect to the free 
basis b. A linear combination of the column vectors of D with some factors is null iff 
the linear combination of the respective column vectors of E with these same factors 
is null. In other words, D and E have the same kernel as linear maps. Applying 
the algorithm to E, we construct a null linear combination of its column vectors 
the factors of which are located in the last column C of R(E). Now, let us choose a 
prime factor p of d such that t = v p (d r+ i tr+ i) < v p (d), so that no diagonal entry of 
7r p (D) is null. There exists such a p because d r+ i >r+ i ^ 0. Since R(E) is invertible, 
at least one of the factors contained in vr p (C) is a unit. But in that case, n p (DC) 
cannot be null as expected. So k = r. Thus we may add to the algorithm a final 
step to get the 

Simple reduction algorithm 2>: Let M be a rank-r submodule of Z^, b a basis 
of M containing s > r vectors and B the corresponding basis matrix. By deleting 
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the last s — r null columns of @ (B), one gets a minimal basis matrix for M. The 
matrix @(b) = S>{B) thus obtained is called the simple reduction of the basis b or of 
the basis matrix B. ♦ 

Let b^ and b^ be two bases of M. In the next three paragraphs, we are going to 
work in a single Chinese factor, say with prime factor p, and we are to prove that for 
every i G {1, . . . , r}, the i-th diagonal entries of $i(b^) and &{b^) are associated. 
In order to make notations lighter, we even suppose that d is a power of a prime, say 
p s . There is a slight difference, since in the latter case, r may vary with the Chinese 
factor one chose initially. The reader may check that such a trick is allowed. Let 
_g( a ) = L(&(°)) -1 f^(&( )), a G {1, 2}, B be the representative matrix of b with respect 
to the computational basis and P 12 , P 21 and E be three r x r matrices such that 

S (l)pl2 = jB (2) > S (2)p21 =jB (l) > BE = B (1 l (20) 

So we have 

BEP 12 P 21 = B^P l2 P 21 = B^ = BE (21) 

and then 

^>(P)P = $>(E), with P = R(E)- 1 P 12 P 21 R(E). (22) 

If some diagonal entry of @(E) were zero, then the column vectors of B^R(E) = 
BL(E)~ 1 ^(E) would form a basis of M with at most r — 1 elements, what is impos- 
sible. So there exists an r x r matrix Q such that P = I r +pQ. Hence P is invertible, 
and so are P 12 and P 21 . For a G {1, 2}, consider the maps 

/(«): (Z/p'Zr — M 

x _ ► p»x [I6) 

where elements of (Z/p s Z) r are presented as column vectors and let nf \ i G {0, . . . , s}, 
be the number of vectors X so that f^ a \X) is of order p s ~ % . For every X so that 
B^X is of order p s ~\ the vector Y = P 21 X is so that B^Y is of order p s ~ % as well. 
Since P 21 is injective as a linear map, we have nf^ > n^. The converse inequality 
can be shown the same way and so n!p = nf\ 

Now let b be any basis of M and r iy i G {0, . . . , s}, be the number of diagonal 
entries of D — S>{b) of the form up 1 , u G U(Z/p s Z). We also define the following two 
related objects 

i 

\/ie{-l,...,8-l},a i = Y,r j , (24) 

3=0 

and as intervals in N 

Vi G {0, . . . , s - 1}, Ki = {(Ti-i + 1, . . . , ^}. (25) 

The cardinality of a is of course r^. We are to prove by induction on % that the 
rj's do not depend on the choice of b and so are properties of M. As in the previous 
paragraph, consider the map 

/: (Z/fZy — M 
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The number of vectors X so that f(X) is of order p s l , i £ {0, . . . , s — 1}, is 



j=0 



JJ p ((«-l)-(<-*))»-* 
.fc=0 



x [p(( s - 1 )-( i -i- 1 ))^' _ p((-s-i)-(^i))'^J x 



X 



JJ p ((*-l)-(i-fc-l))r,, 
.fc=J+l 



s-1 



Indeed, one can consider the bar graph in figured] to see where that latter expression 
comes from. 



Valuation 
s-1 

8-2 



i - 1 



K K x K 2 



Ki_i Ki K i+ i 



K s -2 K a - X 



Figure 1: How to calculate the rij's 

The individual positions on the horizontal axis have not been displayed. Instead, 
only the relevant intervals of them have been. For any X e (Z/j/Z) r and any 
a G {0, . . . , r}, the vertical bars in plain or dashed lines and the horizontal dotted line 
above the a-th position show lower bounds for the p- valuation of the a-th coefficient 
of f{X). Thus as a property of D, if a G Ki, we have v p (f(X) a ) > I as shown by 
the plain line bars. Since the order of f(X) is prescribed to be p s ~\ v p (f(X) a ) > i 
as shown by the dotted line. Finally, we put 



j = min(A; G {0, . . . , s}; 31 G K k , v p (f{X)i) = i). 



(28) 
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There exists such a j (j = 2 in the example on the graph) and if a < j — 1, 
Vp(f(X) a ) > i as shown by the dashed line bars. These various lower bounds parti- 
tion {0, . . . ,r} into four subintervals corresponding to the four factors in the above 
expression of n«. The sum amounts for all the possibilties for j. 
For % = 0, we have 



n = (p sr ° - p(*-i)n>y(r-ro) = p sr ^_±}j 



(29) 



This quantity, which is a property of M, would increase strictly with r . Hence r 
does not depend on the choice of b. For i > 1, we suppose that for j < i — 1, the r/s 
do not depend on b. Then there exist a nonnegative integer a and a positive integer 
(3 such that 



71; 



(ap sn + (3(p sri -p^ l)n ))p 



(s-l)ri\\ s(r-Oi--L-ri) 



P 



s(r— <Jj_i) 



a + (30) 



Again, we conclude that does not depend on 6. The number n- of vectors of order 
p s ~ l in M, i G {0, . . . , s}, would have been much more obvious a property of M. But 
for % e {0, . . . ,s - 1}: 



rr 



j=0 



J-J p (( 8 -fc-l)-(i-fc))r fc 
.fe=0 



X 



.fc=j+i 



(( s -fc-l)-(i-fe-l))r fc 



n 



X I I J9 

fc=i+l 



(( s -fc-l)-(-l))r fc 



E 

3=0 



.fe=0 



x [p( s -^^ 



p 



(s-i-l)rjj x 



.fe=j+i 



(s-i)r-fc 



s-1 

x Yl V 

k=i+l 



(s-k)r k 



(31) 



with a cumbersome X)fc=L-i appearing as an exponent in the last factor. Even 
if we looked at n'Jn'^ to handle the induction, that exponent would stay for the 
initialisation at i — 0. 

Finally, harking back to the case where d is not necessarily a power of a prime, 
the number r s = r — (tq + . . . + r s _i) of diagonal entries of 3>{b) with p-valuation 
v p (d) is a property of M. We sum up our results about simple reduction in the 

Theorem 3 For any rank-r submodule M ofU\, there exist a free basis f of7H\ and 
a minimal basis b of M such that: 

1. b is represented by a diagonal n x r matrix B with respect to f ; 

2. for all i,j G {1, . . . ,r} 7 i < j, we have bu\bjj. 

Such a pair of bases (/, b) can be found from any basis &o of M by the simple reduction 
algorithm Ql . Moreover, for any pair (f,b) as above, the sequence (d/u^bu))^^^,,^} 
of the diagonal entries of B "without unit factors" is the same and therefore is a 
property of M. We shall call it the characteristic sequence of M. 
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With the notations of the theorem, M is free iff for alH G {1, . . . , r}, ba is a unit 
in Z<2, or in other words iff its characteristic sequence contains only l's. 

Corollary 4 Let (3 = (&i, ... , 6 r ) fre a /ree family of 71^. Then r < n and there exist 
n — r vectors b r+ i, . . . ,b n E 7% so that [3 = (b\, . . . , b r , b r+ \, . . . , b n ) is a free basis of 
Zg. 

Proof. Indeed, with D the (1, . . . , r; 1, . . . , r) submatrix of the rxn diagonal matrix 
@(P Q ), a representative matrix for such a (3 with respect to the computational basis 
is 

L(/3 )- 1 diag( J Di?(/3 )- 1 ,/ n „ r ). (32) 



Corollary 5 For any two submodules M and N of ZJJ with the same characteristic 
sequence, what implies that they have the same rank, there exists an automorphism 
of 'Z^ that brings M onto N . 

Proof. Let (/, b) (resp. (h, c)) be a convenient pair for M (resp. N) as in theorem [31 
Then the automorphism of ZJJ defined by 6, i— > i G {1, . . . , n}, brings M onto iV. 
■ 

The pair (/, b) in theorem [3] is not unique. For the sake of Section HI we study 
the relation between the various suitable bases /'s. Let {f^\b^ l >) and {p 2 \b^) be 
two convenient pairs and P the nxn change of basis matrix defined by f^P = f^. 
Let us work in a single Chinese factor. Let the K^s be defined as in (125]) plus 

K s = {r + l,...,n}. (33) 

For any k G {0, ...,n}, there exists some ik G {0, . . . , s} so that k G K ik . So 

(2) 

p tk f k G M and hence 

Vi G {zfc + 1, . . . , s}, Vj G KtJ-^P^. (34) 

Since P is invertible, we also deduce from that latter result that for any % G {0, . . . , s}, 
the (ifj; JQ) diagonal block of P is an invertible matrix. 

As a converse, for any convenient pair (/, b) and any invertible matrix P satisfying 
relation ( 1341) . let 6' be the family represented by the matrix fP@(b) and iV be the 
submodule of M generated by V . Since P is invertible, fP is a free family and 
(fP, b') is a convenient pair for iV. Hence M and iV have the same characteristic 
sequence and with the help of corollary [51 we see that they have the same cardinality. 
So N = M and (fP, b') is a convenient pair for M. 

Let Hg(M) be the subgroup of GL(n, Z d ) that consists all the change of basis 
matrices we have just pointed out. 
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2 Symplectic reduction 



In this section, we replace Z^ by Z^ n , that is to say we take an even number of copies 



of Zrf. Let J 



and to be the canonical symplectic inner product in Z; 



2ri 



1 

^,/. .Let J ( 10^ " m 1 ^ '" ' J11 ' 1 K <U '"">.V lUjmA IH L111H J [IJUIIIL! 1 111 iLi.f 

It is defined with respect to the canonical basis by the 2n x 2n block-diagonal matrix 



( J 
\ 



\ 



J 



(35) 



A basis (b\, . . . , b 2n ) such that for all i, j G {1, . . . , n}, i ^ j, 

u{b 2 i-iMi) = -v(b 2 i,b 2 i-i) = 1 and uj(b 2i ,b 2 j-i) = 



u{b 2i ,b 2j ) 







(36) 



is called a symplectic basis. The canonical basis is symplectic. 

In simple reduction, we allowed any change of computational basis. In this sec- 
tion, we are interested in reduction where changes of computational basis can only 
be symplectic. This means that in the new basis, u is still to be represented by J n . 
Matrices L used for left-mutiplication thus have to satisfy the condition: 



L J„L 



J a 



(37) 



where L T is the transpose of L. Such a matrix is called a symplectic matrix. The 
identity matrix is symplectic. A matrix that represents a symplectic basis with 
respect to another symplectic basis is symplectic. Note that in Z, a symplectic 
matrix has determinant ±1. The same is thus true for a symplectic matrix over 
Z^. This proves that all symplectic matrices are invertible. Moreover, the inverse 
of a symplectic matrix is symplectic. Our plan here is the same as in the previous 
section. We first address reduction of a single vector and afterwards that of a matrix. 
The case n = 1 should be trivial to the reader by now. Reduction of a single vector 
when n > 2 relies itself on the fondamental case n = 2. The following substeps are 
elementary operations that we shall use later on in the various steps of our symplectic 
reduction algorithm for matrices. They form a sequence in order to reduce a vector 
with four components (x, y, z, t) T using only symplectic changes of basis. 

Substep 1: Let x, y,z,t G Z^ and 5 = xAyAzAt. According to corollary dH 
there exist ki, k 2 , k 3 G Z d and u G U(Z, d ) such that 



( u \ 

k\ u~ l k 2 k% 

-k 3 u 1 

\ k 2 u 1/ 



( x\ 

y 

z 

\ t J 



5 



(38) 



Si 



where x±, Zi,t± are byproducts of the choice of k±,k 2 , k^ and u and Si is symplectic. 
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Substep 2: Then, as in lemma dj we find v , w, k^ k 5 e such that 



vz\ + wt\ — z\ A t\ 
—k^zi + k^ti = 

V &4 + U>/c 5 = 1 



22 



(39) 



and we perform a second left-multiplication: 



/ 1 \ 

10 

v w 

\o o -fc 6 h J 

* v 

where S2 is a symplectic matrix. ♦ 
Substep 3: Since 



/ Xi \ 

5 



5 

\ / 



(40) 



we also have 



5 = xAyAzAt = x 1 A5AziAt 1 = Xt A 5 A z 2 , 



5 A z 2 = (xi A S A z 2 ) A z 2 = 5. 



(41) 



(42) 



Thus we can find fcg such that k^S + z 2 = and we perform a third left-mutiplication: 



/ 1 k G \ 

10 

k 6 1 

\ 1 / 



/ Xi \ 
5 
z 2 
\ J 



( Xi \ 
5 


V ) 



(43) 



where ^3 is symplectic. ♦ 

If n > 2, we apply the process defined by this sequence of substeps n — 1 times 
in order to end with a vector whose components are null except maybe the first two 
ones. At step i, we set the (2n + 2 — 2i)-th and the (2n — 2i + l)-th components to 
0. For a single vector, we can go further and set the second component to as in 
the second substep above. We shall soon define a substep 4 to complete this list of 
elementary operations. 

It is in general not possible to diagonalise nor to trigonalise a matrix using only a 
left-multiplication by a symplectic matrix. For instance, let us try to do even weaker 
a job with the matrix B in the following equality over Z/p s Z, s > 1: 



/ 


a 


* 


7 


h 


\ 




(3 


* 


5 


k 2 









* 


hp 


* 




V 





* 


kp 


* 


/ 


L 




/ 



a * \ 

P * 



0/ 



(44) 
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Our aim is to find a symplectic matrix L so as to get rid of any nonzero term in 
the last two rows. The first, third and fourth column vectors of L, let us call them 
C\, C3 and C4, must be as shown in (JHJ). But as L is supposed to be sympletic, C 3 
must be free and u(C\, C3) = 0. So there exist k 3 , k& G Z^ such that k 3 j + k 4 8 = 1 
and a5 = flj. Hence (a, /3) is a multiple of (7, 5): 

ot = (^37 + k 4 5)a = {k 3 a + £4/3)7, (45a) 
/3 = (k 3l + fc 4 5)/3 = (ha + ht/3)5. (45b) 

Since C\ has to be free, [k 3 a + k 4 j3) has to be a unit. Then there exists I G Z^ such 
that 

w(Ci,C 4 ) = k 2 a-k 1 p=(k 3 a + k 4 p)(k 2 - f -k 1 6) = (k 3 a + k 4 p)(u(C 3 ,C 4 ) -Ip). (46) 

That quantity should be both and invertible and L cannot be symplectic. As for 
simple reduction, we shall make use of right-multiplications to complete the reduc- 
tion. Still, it is only possible to lower-trigonalise that way. Despite that restrictive 
result, we are to find another way of reducing that will prove sufficient to study 
Lagrangian submodules in Section [3j We shall also need the 

Criterion 6 Let a,x,y, z G , a 7^ 0, x a multiple of a and 

( a x \ 
y 
z 
\0 0/ 

There exists a symplectic matrix S such that Sm is upper-triangular iff z is multiple 

ofy- 

Proof. If z is multiple of y, we can trigonalise m by applying substep 3. 

Given a, x,y,z G as specified in the criterion, 5 = y A z on the one hand and 
k G ltd, v £ U (Zd) on the other hand such that 5 = ky + vz, we have 

kir 1 \ 





m 



(47) 



/ 1 











1 








k 


V 













,-1 



/ 





a 


X 


\ 


/ 


a 


X 


\ 







y 









y 









z 









5 












/ 


V 








/ 



(48 



m 



in 



where ^4 is symplectic. There exists k' G Z^ such that y = k'5 and let v = v(§). In 
order not to burden the argument with unessential details, we refer to the Chinese 
remainder theorem to suppose that d is a power of a prime, say p s . Let t = v p (a) < s. 
If w! is symplectically trigonalisable as set out in the criterion, the symplectic matrix 
to use must be as shown in the following equation: 

/ w + kup s ~ l * * * \ / a x \ / wa * \ 

w^ 1 + k 2 2P s ~ t k 2 3P s ~ t k 2 4P s ~ t y * 

ai -ctik' + hv f3 l 5 

\ fc 41 ^- 1 a 2 -a 2 k' + l 2 v P 2 J \ / \ 0/ 



k 21 p s 
k 31 p s 
hiP s 



symplectic 



rn 



(49) 
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with w G U {ltd) ■ We leave the checking of that form to the reader. But the symplectic 
inner product of the third and fourth columns of that matrix has to be 1, what 
proves with Bezout's theorem that k! and v are coprime. Let a, (3 G be such that 
akl + j3v = 1. Then ay = ak'5 = (1 - (3u)5 = 5. m 

We can now state our 

Substep 4: Let x,y,z G Z d , 5 = y A z and X = (x, y, z, 0) T with respect to 
some symplectic basis. One can find a new symplectic basis in which X is written 
(x, y, 5, 0) T . The way to do so is given in (jlHj) . ♦ 

In what follows, we shall need a refined version of the algorithm srf . Recall that 
for any 2n x k matrix m, k > 1, there exists an k x k invertible matrix R(m) such 
that srf (to) = mR(m). For any 2n x k matrix m, i G {1, . . . , 2n}, j G {1, . . . , k — 1}, 
and uiuj] the (i, . . . , 2n; j, . . . ,k) submatrix of m, s^ij will be the algorithm defined 



g/ij does essentially the same job as srf on columns j to /c of m, but it takes into 
account only the last 2n — i + 1 rows to maximise the order and combines those 
columns on the other lines accordingly. 

We now go on with the symplectic reduction algorithm for a single Chinese factor. 
We suppose that d = p s . 

Symplectic reduction algorithm ,5?: Suppose we are given a basis b = 
(b\, . . . , 6^) of a submodule M of 1? d n and B is the matrix of size 2n x k whose 
i-th column is 6j. To reduce B in a symplectic way, the sarting point is % — j — 1 
and B' = B, where i and j are some counters. Then while i < 2n — 3 and j < k — 1, 
that is to say while there remain at least four lines and two columns to deal with, 
do: 

1. Apply g/ij to B' and perform a first left-multiplication by a symplectic matrix 
in order to set to all the coefficients in the j-th column sarting from the 
(i + l)-th line. We obtain a matrix B^\ 

2. Apply to B^ and perform a second left-multiplication by a symplectic 
matrix to set to all the coefficients in the (j + l)-th column sarting from the 
(i + 4)-th line. Indeed, as we see with the example above (equation H4"l) . a step 
further as we planned to make it in the substeps could affect the j-th column 
in a wrong way. We obtain a matrix B^ whose (i, . . . , i + 3; j, j + 1) submatrix 



by 




(50) 



is 



b ( ' 
b {2) 

\ 6ffiy + i/ 




(51) 
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3. Performing substeps 2 and 4, we get a matrix B^> whose (i, . . . , i + 3; j, j + 1) 
submatrix is of the form 



u xo i+2j+1 
6 (3) 





V 



(52) 



with a; G Z^. Notice the line index on the second line. 

4. If x is a unit, apply substep 3 to get a matrix B^. If x is not a unit, just take 

£>(4) = £>(3)_ 

5. Since every coefficient in the (i, . . . , 2n; j + 1, . . . , k) submatrix of B^ is a 



bfj, right-multiply B^ by an appropriate, invertible matrix 



multiple of b\j 

to set to the coefficients on the i-th row starting from the (j + l)-th column. 
We obtain a matrix B^ 5 \ 

6. If a; is a unit, since every coefficient in the (i + 1, . . . , 2n; j + 2, . . . , k) submatrix 
of i?( 5 ) is a multiple of = right-multiply -B^ 5 ^ by an appropriate, 
invertible matrix to set to the coefficients on the {i + l)-th row starting from 
the (j + 2)-th column. We obtain a new matrix B'. If x is not a unit, just take 
B' = B^. 

7. If x is a unit, increase % and j by 2. If not, increase i by 2 and j by 1 only. In 
this latter case, we need not perform step 1 at the next pass. The new is 
just the new B'. 



Once this repeating process has ended, if i — 2n — 1, we reduce the last two rows by 
means of a simple reduction, so as to have at most two nonzero coefficients on them. 
If i < 2n — 1 and j = k, apply a last left-multilplication by a symplectic matrix to 
B' so as to reduce the last column as far as possible without modifying the others. 
As an example, if we started with a In x 2n matrix B with n = 8, we may end up 
with a matrix of the form 



/ 



y(B) 



V 

where the meaning of the letter R is explained below. ♦ 



\ 



^fc ^fc ■¥■ ^fc ^fc ■¥■ ■¥■ 



(53) 
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Horizontal lines of stars in (loUl) beginning with an R will be called rent lines and 
places marked with an R rent points. It is because of rent lines that we need actual 
right-multiplications in steps 5 and 6 instead of merely setting some coefficients to 
as in simple reduction. Without those right-multiplications, we should not produce 
a basis matrix for the very submodule we started from. A rent line can occur only on 
an even row. Suppose is a rent point in the reduced matrix. Every coefficient in 
the (i, . . . , 2n; j, . . . ,k) submatrix is a multiple of the coefficient underneath the rent 
point, at position (i + 1, j). So, if this coefficient is 0, we may stop the algorithm. 
Last but not least about rents, it was necessary to perform the algorithm in a single 
Chinese factor, since a rent may occur at some position in some Chinese factor while 
not in another one. This reduction procedure is thus linked in an essential way to 
the Chinese remainder theorem. 

The algorithm 5? consists in choosing basis vectors f±, . . . , f2 n one after the other 
so as to obtain a basis matrix for M of a particular form with respect to the free 
basis / thus constituted. But can we avoid rents by a discerning choice of the /j's 
so as to get a diagonal basis matrix for Ml Is it a good strategy to choose a vector 
of the greatest possible order as we did? If the issue of order has actually to be 
addressed, is it of some use to discriminate between the vectors of a given order? 
We shall answer those questions in Section HI but we are now sufficiently provided 
to study Lagrangian submodules. 

3 Lagrangian submodules 

For any submodule M of Z^ n , we define the symplectic orthogonal of M by 

AT = {x G Z 2 d n ; Vy G M, w(x, y) = 0}. (54) 
A submodule M is called 

• isotropic if M C M w , 

• coisotropic if M w C M, 

• symplectic if M n M w = {0}, 

• Lagrangian if M = M u . 

Let M be a Lagrangian submodule. M is isotropic. Let us suppose that there exists 
an isotropic submodule N such that M C N. Then MCiVc N w C M w and hence 
M is not Lagrangian. Thus, a Lagrangian submodule is isotropic and maximal for 
inclusion restricted to isotropic submodules. Theorem [7] below will show that the 
converse is also true. 

We are going to use symplectic reduction to find a very simple form for a minimal 
basis matrix of M. As we saw it, we are to suppose that d = p s . Let B be a basis 
matrix for M. The symplectic reduction B = y{B ) is still a basis matrix for M. 
Suppose some coefficient appears on an even row, say at position (2i,j), without a 
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rent. Since M is isotropic, the symplectic product of the (2i — l)-th and the (2i)-th 
column vectors of S?(B) must be zero, what can be written 

V^(£)2*-ij-i) + v p (y(B) 2itj ) > s. (55) 

The maximality of M implies that this is in fact an equality. On the contrary, if 
there is a rent point at position (2i,j) and if the coefficient of y(B) at position 
(2i — 1, j — 1) has p-valuation t, then, by maximality of M, the vector 

C=(0,..., 0,p s -*,0,..., Of (56) 

with p s ~ f at the (2i)-th position, is in M. We insert this column at position 2i, 
that is to say between the (2i — l)-th and the (2i)-th columns of y(B). Since M 
is isotropic, every coefficient on the (2i)-th line is a multiple of p s ~ l and we may 
set to every coefficient on this line at right of the new column. We apply this 
trick to each rent and obtain a diagonal matrix. So there exist k G {1, . . . ,n} and 
Si, . . . , Sfc G {0, . . . , s} so that the diagonal matrix 

D = di&g(p Sl ,p s - Sl ,p s \p s - S2 , . . .,p Sk ,p s ~ Sk ) (57) 

is a basis matrix for M. If k < n, then M would not be maximal. One could add 
for instance the vector 

(0,. .. ,0,1,0,. ..,0) T (58) 

with 1 at the (2k + l)-th position and get a greater isotropic submodule. So k = n. 
By construction of JT'(B), Sj < Sj whenever % < j. Also note that C, as a vector of 
M, has to be a linear combination of the column vectors of y(B). Since our trick to 
make good a rent always yields a new basis matrix for M, the same is true for every 
additional column. So, whether a diagonal coefficient of D on an even row appeared 
while dealing with a rent or not, our using of the algorithm srf warrants that for all 
i e {1, . . . , n}, Si < s — Si. Since these results do not depend on the Chinese factor 
we chose, we have proved the 

Theorem 7 Let M be a submodule of Z^ n and d = Yliei P? ^ e ^ e P r i me factor de- 
composition of d. Then M is Lagrangian iff the following two conditions are satisfied. 
There exists a unique family 

(d 1 ,...,d n )e{l,...,H iei p^ /2i } n (59) 

such that di\d 2 \ ■ ■ ■ \d n \d and there exists a 2n x 2n symplectic matrix S such that 

S x diag(di, d/di, d 2 , d/d 2 , . . . ,d n , d/d n ) (60) 

be a basis matrix for M. 

As a remark to close this section, suppose the (2i)-th diagonal coefficient of D, 
i G {1, ... ,n — 1}, appeared while applying the algorithm 5? to -Bo, that is to say 
there was no rent on the (2i)-th line. Then s/2 > s i+ i > s — > s/2 and so, for 
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j > i, Sj = s/2. If s is odd, there is necessarily a rent on every even row of 5?{Bq) 
except the last one. 

4 A criterion for symplectic diagonalisation 

Lagrangian submodules are quite a particular case. In this section, we first prove 
with an example that it is not always possible, for some submodule M, to find a 
symplectic basis / and a 2n x 2n diagonal matrix D such that fD be a basis of M. 
The diagonal entries of the D need not be arranged by increasing valuations. If such 
a pair (/, D) exists, we shall say that M is nearly symplectic. Our aim will then 
be to provide an criterion to know if a given M is nearly symplectic. That will be 
done with the algorithm Sl u that also yields the symplectic basis / if any. We shall 
eventually see that as Lagrangian submodules, symplectic ones form a particular 
kind of nearly symplectic submodules. For the sake of simplicity, we take in this 
section d = p s . 

Let c G {1, . . . , 2n} and x = (xi, . . . , x c ) a family of vectors in Z 2 / 1 . The Gram 
matrix of x, G = Gram(x) , is the c x c matrix given by 

Vz, j G {1, . . .,c},gij = uj(x h Xj). (61) 

With matrices, if B is the representative matrix of x with respect to the compu- 
tational basis e, then G = B T J n B and thus G is antisymmetric, but not necessar- 
ily invertible, even if x is free. Yet, if c = 2n and x is a free basis of Z 2 ,™, then 
B,G G GL(2n, Zrf). The discriminant of x is the determinant of its Gram matrix: 

A(x) = det(Gram(x)). (62) 

Let M be a submodule of Z 2 ,™ and Fm the set of all free bases / of Z^ n such that 
M has a diagonal basis matrix with respect to / as in theorem [31 We take the K^s, 
i G {0, . . . , s}, to be defined as in the proof and in the commentary of that theorem 
in (1251) and ([33J0. Some of those intervals may be empty. By restriction, the K^s 
determine a partition K' of {1, . . . , c}: 

V*G{0,...,s},^ = ^n{l,...,c}. (63) 

For every G {0, . . . , s} 2 , Gij will be the (K-; Kj) block of G. We also put Gij 
to be a matrix so that if G^ is not the empty matrix and if s^- = v p (Gij), then 
Vp{pij) = and p SlJ Gij = G^. The matrix G^ thus pointed out is not unique if 
Sij > 0. If Gij is the empty matrix, then so is G^. 

For now we take c = 2n only. A simplified study upon Gram matrices enables us 
to give the simplest example of a non-nearly-symplectic submodule. The pattern we 
catch a glimpse of here about those matrices will be seen in its plain form afterwards. 
The reader who is interested only in the general case may skip to the next part. 

1 Be careful that n has been replaced by 2n. 



19 



Let / G F M . For all i G {1, . . . , 2n}, we define 

a M (fi) = mia(v p (u(fi, x));x G M), (64a) 
/3(/, z) = min(j G {0, . . . , s}; 3A; G % G C/(Z d )). (64b) 

The graph on figure [2] illustrates the meaning of qm(/i) and /3(f,i). For any and 
v, a plain bullet at position (k,v) indicates that v p (gik) = v. 



v P (w(fi,fk)) 



a 



a — 1 



/ G i*Af, i is fixed 

a = a M (fi) 

he Kj, j = p(f,i) 



a — I 

1 




K K x 





? 

o-* '■ • 







Ki K a _ x K a hi 



Figure 2: The functions a u and (3 

So there must exist / G {0, . . . , a} and k G K\ so that v p (gik ) = a — I. Let 
i G {l,...,2n}, j = (3(f,i) and fci G so that ^ fel G U(Z d ). Then a M {fi) < 
v p (u(fi,p'fk 1 )) = j = P(f,i). This inequality is illustrated by the second plain 
bullet at position (fci,0). 

We then consider a nearly symplectic submodule M with a convenient pair (/, D). 
If (vp(dn))i=i,... ) 2n is not an increasing sequence, we use a 2n x 2n permutation matrix 
Q so that the diagonal coefficients of Q T DQ are arranged by increasing valuation. 
Let /' = f'Q G Fm- On each line of Gram(/') = Q T J n Q, there is only one nonzero 
coefficient which is necessarily invertible, in fact 1 or —1, and it is clear that for 
all % G {1, . . . ,2n}, a M (fl) = P{f,i)- On figure El the equality a M {fi) = P(f,i) is 
checked iff k\ G K a . 

We are now ready to find the annouced non-nearly-symplectic submodule. Let 
s > 1 and M be the submodule generated by the column vectors of the matrix B in 
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the following equation, with respect to e: 



/ 1 

1 

-1 

\0 



\ 

l-p 

p 

1 / 



/ 1 \ 

p 

10 

\ / 

V 

B 



( 1 \ 

10 



\ o o o o / 



(65) 



We left-multiply B by an invertible matrix L so as to obtain a diagonal matrix. Here, 
the diagonal coefficients of that latter matrix are already arranged by increasing 
valuation. K = {1,2} and K s = {2,4} are the only nonempty intervals Ki. The 
new computational basis is / = eL^ 1 G Fm and the Gram matrix of / is 



G — L JnL 





f 





p 


-1+p o \ 


1 _ 




-p 





1 






i — p 





1 




V 





-1 


-1 J 



(66) 



with L T = (L 1 ) T . At the end of Section [TJ we defined S^(M). Here, any matrix 
P G S^(M) is of the form 

(67) 

with Ai, A3 G GL(2, Zd). The Gram matrix of /' = fP is of the form 

pA\ G m A x A 4 



P T GP 



-A, 



A, 



with G 



00 



1 
-1 



(68) 



and A\ GqqA\, A4 G GL(2, Z^). But we see that for any i £ K = {1,2}, q;m(//) = 
1 < f3(f',i) = s. Comparing to the result of the previous paragraph, this proves our 
claim that M is not nearly symplectic. 

What if s — 1? In that case, the matrix obtained by swapping the second and 
third columns of B, namely diag(l, 0, 1, 0), is a convenient diagonal basis matrix for 
M with respect to the symplectic basis e. 

In the remaining part of this section, we tell how to know whether a given sub- 
module M is nearly symplectic or not and how to find a convenient pair (f,D). 
We shall need a little more vocabulary. Let b be a free basis of Z^ n , a G &2 n a 
permutation of {l,...,2n} and Q the representative matrix of a, that is to say 
the only nonzero coefficients of Q are equal to 1 and are located at the positions 
(i, (j{i))i=i,...,2n- We denote b a the free basis (&<t(i), • • • , &o-(2n)) °f an d sa Y that b is 
er-symplectic if b a = bQ T is symplectic. In that case, the representative matrix of u 
in basis b is Q T J n Q. A 2nx2n matrix L is said cr-symplectic if QLQ T is symplectic 
or equivalently if 

L T (Q T J n Q)L = Q T J n Q. (69) 

Thus the conjugation by L preserves the matrix representative of u in b, L is invertible 
and L~ l is still cr-symplectic. If b and L are cr-symplectic, bL = bQ T QL is still a 
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cr-symplectic basis and if B is the representative matrix of b with respect to a a- 
symplectic basis /, then B is a u-symplectic matrix. Indeed, fQ T and bQ T = 
(fQ T )(QBQ T ) are symplectic bases and hence QBQ T is a symplectic matrix. 

The notions of scalar and set fringe we are going to define involve the K^s and 
thus are meanigless unless a reference sub module or a suitable partition of {1, ... , 2n} 
is specified. Let M be a submodule of Z^ n . Define the K^s accordingly and let k be 
the map 

k: {l,...,2n} — > {0,...,s}, such that % £ K K ^. , . 

i i — ► n(i) 

Then for any Gram matrix G of size < 2n and containing at least one unit, we define 
the scalar (M-) fringe of G by 



or equivalent ly 



fr M (G) = min(«(i) + G f7(Z d )) 

fr M (G) = min(i + j',v p (Gij) = 0). 



(71) 
(72) 



The (M-)fringe of G is the set of all coefficients gfy such that «(z) + /t(j) < frM(G ? ). 
A block Gij is said to be in the fringe of G if 7^ = fr M (G) —i — j > 0. Whenever all 
the blocks G^ in the fringe of G verify v p (Gij) > 7^, we shall say that the (M-)fringe 
of G is good. If there exists G {1, . . . , 2n} 2 such that 



e U (Z d ) with 7«(i)«0) = °> 



(73) 



and 



VA; < i, w p (^-) > J K ( k )K(j), 



(74a) 
(74b) 



we shall say that the (M-)fringe of G is nice. Of course a good M-fringe is a nice 
M-fringe. Let us give an example. If a block G^ with % + j = 3 contains a unit, then 
the following Gram matrix has a good fringe and scalar fringe 3. 



G 



P 3 G 00 


P 2 G i 


pG 2 


G03 


P 2 G 10 


pG u 


G\2 




pG 2 o 


G21 






G30 









(75) 



V : 

We shall need the following lemma and corollary. 

Lemma 8 Let M be a submodule in Z^ n . Let b be a free basis of Z^ n with Gram 
matrix G and assume that G has a good M-fringe. Then for any P £ S^(M) ; P T GP 
has a good M-fringe with the same scalar M-fringe as G. 



That is to say the form (1751) . with the particular scalar M-fringe required, is 
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preserved under conjugation by a matrix in E^(M). 

Proof. The reference submodule is M. Let H = GP. For every block of H, we 
have 

j—l s 

Hij = ^^GjfcPfcj + GijPjj + GikPkj- (76) 

fc=0 k=j+l 

As to the first sum, for every k G {0, ... ,j — 1}, we have 

v p (G ik ) + v p (P kj ) > v p (G lk ) > lik > 7ij + 1 (77) 

and we refer to relations f)127al) and (1127bl) of Appendix IA.2I to see that 

Vp(G ik Pkj) > mm(v p (G ik ) + v p (P kj ), s) > 7^ + 1. (78) 

Since Pjj is invertible, the lines of GijPjj are of the same order as the lines of Gij 
respectively and then 

v p (GijPjj) = v p (Gij) > 7 -. (79) 
As to the second sum, for every k G {j + 1, . . . , s}, the inequality 

v P (G lk ) + v p (P kj ) > (fr(G) - i - k) + (k - j) = 7. . (80) 

implies that 

v p (G ik P kj ) > (81) 

So Vp(Hij) > j^. Let (z, j) be such that 7^ = and v p (Gij) = 0. Then the inequality 
in flHUl) may be modified as 

V/c G {j + 1, . . . , s}, v p {G ik ) + Vp{P kj ) > + (A; - j) > 1, (82) 

and we see that v p (Hij) = 0. So if has a good fringe with scalar fringe fr(G). In the 
same manner, P T GP = P T H has a good fringe with scalar fringe fr(G). ■ 

Corollary 9 Let M be a nearly symplectic submodule ofl^J 1 and f G Fm- Then the 
matrix Gram(/) has a good M-fringe. 

Proof. By assumption, there exists a G (5 2n and /' a a-symplectic basis in F M . 
We have already seen that G' = Gram(/') has a good fringe (with respect to any 
submodule). Besides, there exists P G E^(M) so that / = f'P. So, Gram(/) = 
P T G'P has a good M-fringe. ■ 

We can now give the algorithm for symplectic diagonalisation whenever possible: 

Algorithm @ u : Let M be a submodule of Z^ n , b a basis of M and B its repre- 
sentative basis matrix with respect to any computational basis e'. 

Let / = e'L(B)~ l G F M , where L(B) was defined within the algorithm S> Q (see 
page CI), M = M and b' be the empty sequence with values in Z^ n . Let also c be a 
counter with initial value 0. 

While G = Gram(/) has a nice M-fringe, do 
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1. Choose a pair G {1, . . . , 2n — 2c} 2 that verifies conditions (1751) and (J74"|) 
and perform the partial Gram-Schmidt orthogonalisation process: 



fi = h fj = fj, (83a) 
V* G {1, . . . , 2n - 2c} \ {i, j}, f k = f k - //,///,,/, + //;///,,/- (83b) 

Owing to the nice fringe condition, the corresponding change of basis matrix 
R is in Eg)(M). With i < j and ^ = 1, it reads 



/ 1 



R 



\ 



9ji ■ 


9j,i-i 


1 


9j,i+l 


9j,j-i 







9j,2n 








1 


1 








-9a ■ 


—9i,i~l 





~9i,i+l " ' 


■ ~9i,j-i 


1 


~9i,j+i ■ ■ 


~9i,2n 



V i / 

(84) 

where the two special rows are the z-th one and the j-th one respectively. 
For any k 6 {1, . . . , 2n — 2c} \ {i,j}, f' k e (ft, /j)" and since i? e E»(M), 
f' = fRe F M . 

2. Let 6' be the concatenation of 6' and (g^fl, /j). 

3. Rename Mn (//, as M. 

4. Rename f \ {//, /j} as/. 

5. Increase c by 1. 



Whenever ^(b) = @ u (e', B) = b' has cardinality 2n, then it is a symplectic basis 
of Z 2 / 1 , M is nearly symplectic and there exists a G ©2n so that 6^. e i 7 ^- ♦ 

Since e'L(B)~ l is a free basis of Z 2 / 1 , its Gram matrix is invertible and thus has 
a well-defined M-fringe. Then the discriminant 

A(/'\ {/;,/;}) = ±A(/') = ±det(i?) 2 A(/) (85) 

being a unit, all the forthcoming matrices G have a well-defined M-fringe and & u 
is a valid algorithm. Now if M is nearly symplectic, does this algorithm yields the 
matrix b' we search for? Besides, in step 1, the pair is not unique. So we are to 
prove that if M is nearly symplectic, the algorithm with any choice of the pairs, 
builds a symplectic basis b' that endows M with a diagonal basis matrix. 
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Let M be a nearly symplectic submodule of Z^ n , a £ © 2n with representative 
matrix Q and /i a u-symplectic basis in Fm- Let also B be a basis matrix of M with 
respect to any computational basis e' and let us carry out the algorithm. Corollary [9] 
shows that the first Gram matrix G has a nice M-fringe. We choose a convenient 
pair and find the first two vectors of b' by performing steps 1 and 2. Then with 
N = M n <//, we want to show that the Gram matrix of f = f'\ {//, /•} has 
a nice iV- fringe. From now on, we consider N as a submodule of (f^) exclusively. 
With that convention, £ F^ and corollary [9] tells us that it suffices to show that 
TV is nearly symplectic. 

There exists P £ £#(M) such that /' = HP. For any m £ {1, . . . , 2n}, let £(m) 
be the index defined by uj(h m , ht( m )) — ±1- Since frAf(^) = ^M(f') as shown by 
lemma [8], we have 

/c(m) + K(£(m)) > + (86) 

and hence 



K,(m) < k{%) =>■ K(£(m)) > k(J), 
K(m) < =r- K(£(m)) > «;(z). 



(87a) 
(87b) 



So, and because /j) = ftj is a unit, there exist £ K K (i) and Z = £(/c) £ K K ^ 
so that the coefficients pki and p^- in P are units. So QP has a unit on its cr _1 (A;)-th 
line. Let L be a symplectic matrix so that LQP has all but its a -1 (fc)-th coefficient 
equal to 0. Since we suppose we know where an invertible coefficient is in the i-th 
column of P, the substeps of the symplectic reduction algorithm are unuseful to find 
L. Instead, we form a symplectic matrix inspired by the Gaussian reduction. For 
instance, if a~ 1 (k) = 1, then o" _1 (/) = 2 and L is of the form 



/ 



V 



1 

ho 

h 

&2n 



\ 



1 — &4 /v3 
1 

1 



-k 



2 a 



"2n-l 



1 



/ 



Then the i-th column of P' = Q T LQP has all but its fc-th coefficient equal to 0. 
The basis h! = hQ T L~ l Q is still a-symplectic and /' = hP = h'P'. Moreover, the 
matrix Z = Q T LQ is in E^(M) and thus P' £ S^(M). Indeed, the coefficients in 
the fc-th column of Z have the right valuations by construction. The coefficients on 
the Z-th row not in the /c-th nor in the Z-th columns were determined so that Z is 
cr-symplectic. In particular: 

Vm £ {1, ...,/- 1} \ {k}, uj(Z rn , Z k ) = ±z e{m):k ± zi m = 0, (89) 

where for all i, Zi is the i-th column vector of Z. And according to relation fl56"j) . 

Vm £ {1, ...,/- 1} \ {k}, v p (z^ m ) ;k ) > K(£(m)) - k(i) > k(1) - «(m). (90) 
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Thus v p (zi m ) > k(1) — K,(m) and that proves that Z G S^(M). The coefficient pj- 
divides g^- and hence is a unit. So we apply the same kind of reduction as before to 
the j-th column of P' while preserving the i-th one and find a cx-symplectic basis h" 
and an invertible matrix P" G S^(M) so that /' = h"P" . We may suppose without 
loss of generality that 5^ = 1. Then the vectors h' k ' and /if may be redefined under 
a multiplication by a unit factor so that p ki = p'^ = 1. If we assume that i < j and 
k < I for instance, P" is of the form 



P" 



( * 




* 




*\ 




1 









* 




* 




* 









1 




I * 




* 







Z 



(91) 



T T 



Let h = h" \ {h", h"} and P be the matrix obtained by deleting the k-th and Z-th 
rows as well as the i-th and j-th columns of P" . Now j[ = h'l and /j = h" so that 
f = h b P b . By construction, P b G E^(JV). So /i b G Fjy. But since Ai" is cr-symplectic 
and w{h'l, h") = 1, there exists p G &2n-2 such that /i b is p-symplectic. That proves 
that iV is nearly symplectic. 



We end this section with a proposition that shows the difference between sym- 
plectic and nearly symplectic submodules. 



Proposition 10 Let M be a submodule ofl^J 1 



symplectic and such that M + M u 



Then M is symplectic iff M is nearly 
In that case, M is free and of even rank. 



Proof. If M = {0}, both terms of the equivalence are checked and M is obviously 
free and of even rank. So let M be a nonzero symplectic submodule and let / G Fm- 
Since e M \ {0} and M fl M w = {0}, there exists x = Yn=2 x ifi e M such 

that uj(p s ~ 1 f\, x) 7^ 0. Thus x is free, u(fi,x) is a unit, there exists j G K \ {1} so 
that cu(fi, fj) is a unit and f\ G M. That proves that Gram(/) has a good fringe. 
We then perform the partial Gram-Schmidt process and find a new basis /' G Fm'- 



fl - fl, fj - fj: 

V/c G {1, . . . , 2n} \ {1, j}, f k = f k - g^g lk fj + //,///,,/,. 



(92a) 
(92b) 



Since 2, j G -K"o, we may rename without loss of generality /j as f 2 and f 2 as /j. Let 
N = M (~) {f[, f^Y and let y be some nonzero vector in if any: 



v = Z>//e#\{0}, 



(93) 



i=3 
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with r the rank of M. Since M is symplectic, there exists zeMso that w(y, z) ^ 0: 

r 

But with z' = z — zxf[ — z 2 f 2 ^ N, we also have w(y,z') = u(y,z) 7^ 0. Hence 
y £ N w and A" is symplectic. If M is larger than (f[,f 2 ), then A^ 7^ 0. We carry 
out again the same reasoning until we find a free basis h of Z^ n the first r vectors 
of which form a symplectic basis of M. Moreover, the last 2n — r vectors of ft, form 
a free basis /i^ of M w '. Up to now, we proved that M is free, of even rank and such 
that M ® = Z 2 d n . 

Since A(h ) = A(h) is a unit, then in the same manner as we showed the validity 
of we see that we can apply the entire Gram-Schmidt orthogonalisation process 
to it . Hence, M is nearly symplectic. 

Let us show the converse. Let / be a symplectic basis of Z^ n and D the following 
2n x 2n diagonal matrix such that fD is a basis matrix for M: 

D = diag(p Sl ,p S2 , . . . ,p S2n -\p S2n ). (95) 

Then this other diagonal matrix D' is such that fD' is a basis matrix for M u : 

D' = diag{p s ~ S2 ,p s ' Sl , . . . ,p s - S2 ",p s - S2 - 1 ). (96) 

Under the assumption that M + M w = Z^ n , we have 

si < s ^> s - si > 1 =^ s 2 = ^> s - s 2 > 1 =3- si = 0. (97) 

The same reasoning is true starting with any i / 1 and thus M is free: Each of 
the da's is either 1 or 0. For any % e {l,...,n}, suppose that fn G M and let 
x E M, y E M w so that f 2i -i = x + y. Then 

/a) = w{x + y, f 2 i) = 1. (98) 

That proves that the component of x along f 2 i-i is 1 and hence f 2 %-i E M. By the 
same token, f 2 i is in M if f 2 i-i is. Therefore M is symplectic and of even rank. ■ 

Conclusion 

In the present work, we addressed fundamental issues about submodules over 7L d 
motivated by the growing interest for quantum information. We saw several kinds 
of reduction methods for a basis matrix of a finitely generated sub module over Z^. 
As a first result, we established two algorithms in order to perform simple and sym- 
plectic reduction, namely *2> and 5? respectively. In simple reduction, no conditions 
are imposed on the computational bases, so that one is able to get a diagonal basis 
matrix of the particular form specified in theorem [3] for any submodule. In sym- 
plectic reduction, only symplectic computational bases are allowed. The algorithm 
5? fails to provide a diagonal basis matrix in the general case as it meets with the 
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rent problem. But as a second result, this algorithm was enough for us to obtain 
an explicit description of Lagrangian submodules with respect to symplectic compu- 
tational bases, as we stated in theorem [7J Outside its native area of study, such a 
description can be of particular interest in the construction of Wigner functions over 
a discrete phase space and of the corresponding marginal probabilities. 

As a third result, we showed that there exist submodules with no diagonal basis 
matrix with respect to any symplectic computational basis. We called the submod- 
ules that have such a basis matrix nearly symplectic and gave an algorithm, namely 
tfiu, to find a suitable symplectic basis and the corresponding diagonal basis matrix. 
We also compared nearly symplectic submodules with symplectic ones: A symplectic 
submodule is nearly symplectic but its sum with its orthogonal generates Z^ 1 as a 
whole. Since the core feature in the area of quantum information we started from 
is the symplectic inner product, it is of particular interest to express the relevant 
submodules in as simple a way as possible whereas the way to compute a symplectic 
product is preserved. Thus, we would also like to know if the tools involved in the al- 
gorithm $! u enable us to perform simultaneous reduction of matrices for instance. Do 
all these patterns enable us to measure a kind of distance between the submodules? 

Let us say more about the idea behind the symplectic product. The fundamental 
operation to compute such a product consists in mixing the components of the two 
vectors involved following a " cross" pattern. That basic pattern is found again in the 
wedge product and in its generalised form in the computation of determinants. In a 
forthcoming paper, we shall address the issue of finite projective nets over Z^, where 
the wedge product plays a particular role in relation with other geometrical objects 
pointed out by quantum information theory, as for example MUBs. Moreover, one 
commonly refers to a 2 x 2 determinant to know whether two qubits are entangled 
or not. Thus we are also to see that determinants and sums of them are a kind of 
measure for entanglement. 
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Appendix A Arithmetics in Z and Z^ 

A.l gcd, 1cm and order 

In Z, the notion of greatest common divisor (gcd for short) has an intuitive meaning. 
But it is equivalent to a little bit more abstract property which will generalise to 
residue class rings Z^ = Z/dZ, d > 2. This equivalence is called Bezout's theorem. 
To see how it works, note that the sets of the form kZ, k e Z, are the sole subrings 
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of Z. Bezout's theorem states that if 5 is the gcd of Oi, . . . , a n G Z: 

rt 

5 = /\ai, (99) 
i=i 

then 5 is characterised up to its sign by the set equation 

it 

5Z = ^a;Z, (100) 
i=i 

that is to say <5Z is the set of all linear combinations of the a^s over Z. We im- 
mediately deduce from that theorem Gauss's theorem for integers: If a divides the 
product be and is coprime with b then a divides c. It is also quite obvious from 
Bezout's theorem that the following three properties are equivalent: 

1. a is coprime with d; 

2. The residue class a in the quotient ring Z^ is invertible. In that case, we also 
say that a is invertible modulo d; 

3. a is a generator of Z^: 

aZrf = {ax; x G Z^} = Z^. (101) 



The invertible elements of Z d are also called its units and hence their set is denoted 
U(Z d ), or Z* d . 

In the case of Z^, equation f llOOp is retained in order to define a notion of gcd. A 
residue 6 G Z^ is a gcd for a set of a^'s in Z^ if 

n 

5Z d = ^a-Z d . (102) 

i=\ 

So, if 5 is the gcd of the a^'s, 5 is a gcd for the a7's. As for Z, this gcd is determined 
only up to an invertible mutiplier. We shall prove that later on in Section IA.2I The 
computation of a gcd is still associative and commutative. As is the case for Z, the 
a7's will be said coprime if S is invertible. In this case, 5Z^ = Z^. The interpretation 
in terms of linear combinations is still valid. The intuive one in terms of prime factor 
decomposition or division order is also still valid if one takes into account the slight 
modification indicated by the following property: 

n / n \ 

6 = f\Wi in Z d iff 5Ad= I /\ ai J Ad in Z. (103) 

i=l \i=l J 

Indeed, if we come back to representatives of residue classes, definition (I102p reads 

<5Z + dZ = + rfZ ' ( 104 ) 
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which is nothing but the second member of equivalence (11031) . So, there is an addi- 
tional d in each member of that latter expression. It means that the power k of a 
prime factor in S or in any one of the e^'s must first be replaced by the minimum of 
k and the power of the same prime factor in d. Light will be shed on that recipe in 
Section IA.2I with the Chinese remainder theorem and p-adic decomposition. 

If 5 is a gcd for the aj's, we shall call S Ad the gcd of the a£'s. In fact, it is a gcd 
and if 8\ and 62 are two gcd's then according to fl!03j> 



5 1 A d = 5 2 A d. (105) 



That gcd is also the first one according to the lexicographic order from to d — 1 
since for any positive 5 such that 5 is a gcd, 5 Ad < 5. 

In the same manner, we define a lowest common multiple (1cm for short) in of 
Oi, . . . , a n e Z (resp. in aT, ... e Z^) to be an element fi l (resp. JT^) such that 

n / n \ 

/^Z = P| aiZ I resp. 7I^Z d = Q a~Z d J . (106) 

i=l V i=l / 

The 1cm operation is associative and commutative in both case and is denoted by 
the vee symbol V: 

n / n \ 

i=l \ i=l / 

Those two notions of lcm's are related by 

n / n \ 

^7= Yo7in Z d iff // Arf = I J A d in Z. (108) 

i=i \i=i / 

Indeed, since the map s 1— > x is onto, the first equality means 

n 

/iZ + rfZ = p|(aiZ + dZ) (109) 
i=i 

and the second one means 

/iZ + rfZ= ^pjaiZ^j +dZ. (110) 

We are thus to prove that 

n 

p|(a,Z + dZ) = ( pja^Z ) +dZ. (Ill) 



vi=l 



8=1 \i=l 



Since all operations involved here are associative and the intersection of two subrings 
is still a subring, we can prove this equality by induction. So let us suppose that 
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n = 2 and let x be in the first set: 



x = kidi + lid = k 2 a 2 + l 2 d. (H2) 

Divide each member by A a 2 A d: 

x > = k ia [ + kd' = k 2 a' 2 + l 2 d'. (113) 

Then a[ A a' 2 divides kia[ — k 2 a' 2 = (l 2 — li)d' and is coprime with d' . So there exist 
nx, n 2 G Z so that ri\o! x — n 2 a' 2 — l 2 — h- Let us call y = riia^ + h = n 2 a' 2 + l 2 . We 
have 

x' — yd' = (ki — riid')a[ = {k 2 — n 2 d')a' 2 (H4) 



and eventually 



ydef]aiZ. (115) 



i=l 



The converse inclusion for (11 111) is trivial. Note that (1 11 II) was quite obvious with 
the prime factor decomposition interpretation of gcd and 1cm since each of those two 
operations in Z is distributive with respect to the other. 

Finally, we define the order u(a) of a G to be the cardinality of the subring 
aLd = {ka; k G Z^}. This is also the first positive natural number n such that na is 
a multiple of d. The only residue whose order is 1 is 0, a is invertible modulo d iff 
u(a) = d, and v{a)7L is the kernel of the linear map 

Z — > Z d 

k i — ► ka. (116) 

We know from group theory that the cardinality of a subgroup H of a finite group 
G is a divisor of the cardinality of G. For any a G Z, since aZ^ is a subgroup of Z^, 
x = d/v(a) is a well-defined integer such that the order of x is v(a). Let us carry out 
the Euclidean division of a by x: a = qx + r with < r < x and suppose that r ^0. 
From the definition of r and according to that latter assumption, v{r) > v(x) = z/(a). 
But z/(a)r = u(a)a — q(v{a)x) = so that z/(r) < z/(a), contradiction. Thus a G xZ^ 
and aZ^ C xl,^ Since those two sets have the same cardinality they are equal and 
we have just seen that no residue class r with < r < x can generate this set, except 
for the case when a = x = r = 0. We deduce that x is the gcd of the one-element 
family (a). We shall say that it is the gcd of the element a. 
So, we can compute the order of a as 

K«) = -4rr ( 117 ) 

a A a 

It means that if 

n n m 

d = JJp? and a = JJpf (118) 

i=l i=l 1=1 
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are the prime factor decompositions of d and a, then 

n 

/—\ TT Sj-min(sj,s-) / 1ln \ 

u(a) = [[ Pi *. (119) 

Hence we can find again the equivalence we first deduced from Bezout's theorem. 
A. 2 The Chinese remainder theorem 

In the previous section of this appendix, we saw that aZ^ = x'Ld with x = a A d. 
We may wonder from via) = v(x) and from fll 18j) and (11191) if there is no invertible 
factor A G Zrf such that a = Xx. Moreover, it will prove the claim after (11021) that 
the gcd is determined up to an invertible factor. Since if 8\ and 5 2 are two possible 
gcd's, then there shall exist two invertible Ai and A2 such that 

h = \k(-!^) for k — 1,2, (120) 

and so #2 = X2X^ 1 5i. It will also proves that for any gcd 5 of the a^'s, d/v(5) is the 
gcd of the a7's. 

If for any i, s[ < Si, the existence of A is obvious: A = q answers the question. But 
it is not any more so obvious when there is one i for which s- > s^. A fundamental 
idea to refer to and that we use many other times in this paper is to prove a property 
for d a power of prime (d = p s ) and then deduce that it is true for any composite d 
as in (I118p . This idea is achieved by the so-called Chinese remainder theorem. 

Theorem 11 (Chinese remainder) If d = YYi=iPT ^ s prime factor decompo- 
sition of d, then we have the following isomorphism of rings: 

a 1 — > (ai,...,a n ) 

where a^ = 7r Pi (a) is the residue class of a modulo p\ J . Addition and multiplication 
on the right-hand side of U21\) are componentwise: 

(a 1 ,...,a n ) + (b 1 ,...,b n ) = (a t + h, . . . , a n + b n ), (122a) 
(ai, . . . ,a„)(6i, • • • A) = (o 1 6i,...,a„6 n ). (122b) 

The Z/p* 4 Z in the theorem are called the Chinese factors of Z/rfZ. According 
to fll22bl) . a is invertible iff all its Chinese components are. Thus, to solve our 
problem, we can equivalently search for a Aj in each Chinese factor such that = 
XiXi. Moreover, we are going to give a first cumbersome proof of the existence of Ai 
to show the necessity for the p-adic decomposition in each Chinese factor. Let us 
suppose that d = p s , let v = v{x) = via) and suppose that both q and q + v are 
noninvertible modulo d, that is to say p divides q and q + v. We are to prove this is 
impossible and thus there exists an invertible A modulo d such that a = Xx. Indeed, 
since a = qx and p\q (p divides q) the properties p n \a and p n ~ l \x are true for n = 1. 
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Suppose they are true for some positive integer n. We know that x is a multiple 
of a in Zd and thus there exist k, I G Z such that x = fea + id = fca + /z/x. Since 
p\(q + u) — q = u and p n_1 |x, p n |ra and then p n \x due to the induction hypothethis 
and to the previous expression for x. And since p\q and a = qx, we deduce that 
p n+1 \a. Hence the property p n \a should be true for all positive integer n, what is 
clearly nonsense when a ^ 0. If a = 0, we can just replace it by d. We are now going 
to introduce the p-adic decomposition in Z/p s Z and compare with a proof using it. 

Let a be a nonnegative integer and p be prime number. Writing a in numeration 
basis p, we get the numbers r G N and a , . . . , a r G {0, . . . ,p} such that 

a = a + aip + ■ • ■ + a r p r . (123) 

This is the p-adic decomposition of a. The p-valuation of a is 

„ ( n \ _ / min (* e {0, . . . , r}; 7^ 0) for a ^ 0, 

Vp[a) ~ \ +oo for a = 0. ^> 

For instance, if a = YYi=i Pi* 7^ is the prime factor decomposition of a then for any 
ie {1, . . . ,n}, v Pi (a) = Si. 

Every class a G Z/p s Z is uniquely represented by an integer a G {0, . . . ,p s — 1}. 
So there exist one single (a , . . . , a s _i) G {0, . . . ,p} s such that 

a = a l + aip + • • • + a s ^ip s ~ l . (125) 

This is the p-adic decomposition of a. The p-valuation of a is 

«p(3) = ( m j n( ' G { n' ' ' ' ' S ~ lh ^ 0) a ^ °' (126) 
1 K ' y s for a = 0. 

The order of a is then p s ~ v p( a ) and a is invertible iff its valuation is 0. Moreover, for 
all a, be Z/p s Z, 

v p (a + b) > mm(v p (a) , Vp(b)) , (127a) 

v p (ab) = mm(v p (a) + v p (b) , s) , (127b) 

where equality in the latter formula relies on the fact that p is prime. 

To check their understanding of p-adic decomposition, the reader should be able 
to see the following equalities, for any finite set {a 1; . . . , a n } C Z of divisors of some 
d > 2: 

(a" =1 a (vr=i d/ai ) = d > (i28a) 

(Vili a (A" =1 d / a ) = d - ( 128b ) 

Now, let us hark back to our search for Aj. Since they are of the same order, 
cii and Xi are both zero or nonzero. If they are nonzero, then according to (1127bj) 
applied to a\ = qiXi, qi is of p^ valuation 0. Hence it is invertible in Z/p^Z and we 
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take Aj = Oj. If they are null, then v { = ir Pi (v) = 1 and either q i or q { + v { is of 
Pi- valuation so that we get our \. That is a simple proof of the 

Lemma 12 Let d > 2 and a,b G Z d . T/ie iwo following assertions are equivalent: 

1. a,b are of the same order. 

2. There exist A G U{Zd) such that a = Xb. 

If one of them is satified, a and b are said to be associated. This is the case in 
particular if a and b are two gcd's of a same set of elements in Z d . 

What about the computation of the gcd of given a±, . . . ,a m G Z/dZ using the 
Chinese remainder theorem. Let = ir Pj (ai) for any i G {l,...,m} and j G 
{1, . . . , n}. In order to lighten notations, we avoid the bar over residue classes in this 
paragraph. The set to which any element belongs will be known from the context. 
Let also 5 = /\™ =1 a% in Z/dZ and 5j = 7i Pj (5). It is quite obvious that in the j-th 
Chinese factor of Z/dZ the gcd of the a^'s is 

m 

f\ dij = pf , with kj = min(v Pj (a^); i G {1, . . . , m}) < Sj. (129) 
i=i 

Indeed, if i is an index for which v Pj (a io j) = kj, then a io j = p^u, where u is 

k ■ 

invertible. Thus p^ 3 may be obtained as a linear combination of the a^-'s and any 

linear combination of them is a multiple of p^ J . Moreover p k j = p^ 3 A p s ? in Z. 
Since 5 is a linear combination of the a^'s, 5j is a linear combination of the a^-'s 
and so v p .(5j) > kj. Then, a io being a multiple of 5, multiple of 5j and so 

v Pj (5j) = kj. Hence 5 = YYjLiPf ■ All this is nothing but the usual way to compute 
gcd's by means of prime factor decomposition. 

Another useful lemma is the following one. It is not often found in literature 
maybe for the crux is easy to see. 

Lemma 13 Let d > 2 and a,b,5 G Z d such that 5 is a gcd for a and b. If one of 
the following conditions is verified: 

• d is odd, 

• d is even and 1*2(0) 7^ v 2 (b), 

• d is even and v 2 (a) = v 2 (b) = v 2 (d); 

then one can choose u,v G U (Zd) such that 5 = ua + vb. If not, then only u or v can 
be chosen invertible. 

Proof. In this proof, in order to distinguish classes and representatives, we shall note 
a, b, S instead of a, b, 5 as in the terms of the lemma. Using the Chinese remainder 
theorem, we search for u and v in each Chinese factor separately. So suppose d = p s , 
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with p odd to begin with. Also note that owing to of lemma [121 it suffices to prove 
lemma [13] for any gcd S of a and b. So we will choose 5 = a A b, taking into account 
the remark just following (j!02p . By definition, there exist uq,vq G Z such that 
5 = Uoa + v b, and dividing by 5 we obtain 

l = u a' + v b' (130) 

where a' = a/ 5, b' = b/8. We see that uo and vq cannot be both multiples of p. At 
least one of uq and v~o, say uq, is a unit. Suppose vq is not a unit, that is to say vq is a 
multiple of p. If vo + a' were a multiple of p, then so would a', what would contradict 
(11301) once more. So t>o + a' is a unit and so is Vq — a'. Besides, if uo ± b' were both 
mutiples of p, so would be 2b', V and then uq. We may now conclude that at least 
one of the three pairs 

(uo,vti), (u + V,v Q - a') and (u - b',v + a') (131) 

is in [/(Z^) 2 . That proves the lemma as to the first condition. 

If p = 2 and ^(a) 7^ ^(b), then in ( 1130}) . one of a! and b' is odd, say a', and the 
other is even, say V ' . Moreover, uq has to be odd too. Then one of the two pairs 

(Uo, vo) and (uq + b', v Q — a') (132) 

is in U(Z d ) 2 . 

If p = 2 and ^2(0) = V2(b) = V2(d), then a = b = 5 = and u = v = 1 suit the 
lemma. 

Still with p = 2, if ^2(0) = ^2(6) 7^ V2{d), we have already seen that at least one 
of Mo and Vq, say uo, is a unit. But cannot be a unit, since in that case u^a' + vofr' 
should be even. Because we only need u a' + v b' to be odd, we can choose which 
one of Mo and vq is invertible. ■ 

By induction and associativity of gcd, we have the 



Corollary 14 Let ai, a 2 , . . . , a n G 7L<i 5 be one of their gcd's. For any i G 

{1, . . . , n}, one can find ki, k 2 , ■ ■ ■ , k n G with ki G U (Z^) such that 

n 

5 = kjOj. (133) 



Appendix B Finitely generated modules over 

Let ti and n be two positive integers with d > 2. The set product ZJJ is endowed with 
its canonical structure of Z-module and its elements will be called vectors. Addition 
is componentwise: 

x y ^d (134) 

({a 1 , . . . ,a n ), (61, . . . A)) 1 — ► (ai + h, . . . ,a n + b n ) 
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and the product map is 



Z x 7L n d > Z d (135) 
(k,(a l7 ...,a n )) i — ► {ka u ...,ka n ). 

This can also be denoted k ■ {a\, . . . , a n ) or even k(a±, . . . , a n ) without a symbol. 
Obviously, such a product depends only on the residue class of k modulo d, so that 
we may consider Z n d either as a Z-module or a Z^-module. So, when the context is 
clear or the distinction useless, one can avoid the bar to denote residue classes. 

A submodule of Z d is a module over Z d included in Z d . When n — 1, submodules 
are called ideals of Z d . Let / be a finite index set and m = (mi) ieI be a family of 
vectors in Z d . The submodule those vectors generate is the set of all their linear 
combinations over Z d and is noted (m), or (mi, . . . , m r ) whenever / = {1, . . . , r}. 
It is the tiniest submodule that contains all the m^'s. The family m is a generating 
system or basis of that submodule. Moreover, any submodule of Z d is generated by 
some basis, since the whole submodule itself is such a basis. The family m is free if 
for all family (cj)j e / of elements of Z d , 

^anti = =>- Vz 6 I,* = 0. (136) 

In other words, the linear map 

fm '■ * (137) 

{ c i)iEl 1 * Z^i^I c i m i 

has kernel 0. A basis of a submodule which is also free is called a free basis of 
that submodule, and a submodule for which there exists a free basis is called a free 
submodule. The computational basis of Z d is of course a free basis and it will be 
denoted by e = (ej) i= i... n . For any vector a, e*(a) = is the i-th component of a 
with respect to e. 

A vector a such that the one-element family (a) is free is called a free vector. If 
moreover n = 1, then a is just said regular. 

A submodule M is said to be of rank r if the minimal number of vectors needed 
to generate it is r. This notion of rank should not be confused with the rank of the 
matrix whose columns are a set of generating vectors of M with respect to some free 
basis of Z d (see [36]). Those two notions of rank for submodules and matrices do 
not overlap. 

A minimal basis for a rank-r submodule M is a basis of M with r elements. 
Such a basis need not be free. For instance in Zf, ((2,0)) is a basis for the rank-1 
submodule {(0,0), (2,0)} but is not free. But if M is free, minimal and free bases 
are the same ones. Indeed, let (mi)j = i r .. )r . be a minimal basis of M and (m^)j g / be a 
free basis of M. By minimality of m, r < |/| and by freedom of m', |Im/ m /| = c?' 7 '. 
So 

\M\ = \lmf m \ <d r <d w = \1mf m .\ = \M\ . (138) 

Thus on the one hand |Im/ m | = d r and f m must be injective, so that m is free. On 
the other hand, |/| = r implies that m' is minimal. 
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Let a = (ai, . . . ,a n ) G Z^. The order v(a) of a is the cardinality of the set 
Zd • a = {ka; k G Z^}. The only vector whose order is 1 is the null vector and a is a 
free vector iff v(a) = d. Endly, we note that i/(a)Z is the kernel of the linear map 

This kernel is the intersection of the ker(e* of) — i/(a,)Z and thus 

n 

v{a) = \J v{ ai ). (140) 

i=l 

With ([nZD and (TT28al) we also deduce that 

"(<0 = , A n \ A , (141) 
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